mirror of
https://bitbucket.org/jsuto/piler.git
synced 2024-12-25 17:40:11 +01:00
prevent logging in without @ in the email address via imap and pop3 auth methods
This commit is contained in:
parent
e133a41570
commit
c0e1bec960
@ -253,7 +253,7 @@ class ModelUserAuth extends Model {
|
|||||||
private function checkLoginAgainstIMAP($username = '', $password = '') {
|
private function checkLoginAgainstIMAP($username = '', $password = '') {
|
||||||
$session = Registry::get('session');
|
$session = Registry::get('session');
|
||||||
|
|
||||||
$user = array();
|
if(!strchr($username, '@')) { return 0; }
|
||||||
|
|
||||||
$imap = new Zend_Mail_Protocol_Imap(IMAP_HOST, IMAP_PORT, IMAP_SSL);
|
$imap = new Zend_Mail_Protocol_Imap(IMAP_HOST, IMAP_PORT, IMAP_SSL);
|
||||||
if($imap->login($username, $password)) {
|
if($imap->login($username, $password)) {
|
||||||
@ -271,7 +271,6 @@ class ModelUserAuth extends Model {
|
|||||||
|
|
||||||
|
|
||||||
private function checkLoginAgainstPOP3($username = '', $password = '') {
|
private function checkLoginAgainstPOP3($username = '', $password = '') {
|
||||||
$user = array();
|
|
||||||
$rc = 0;
|
$rc = 0;
|
||||||
|
|
||||||
try {
|
try {
|
||||||
|
Loading…
Reference in New Issue
Block a user